Palo Alto Networks Exam PSE-Platform Topic 1 Question 63 Discussion

Actual exam question for Palo Alto Networks's PSE-Platform exam

Question #: 63
Topic #: 1

[All PSE-Platform Questions]

What is a best practice when configuring a security policy to completely block a specific application?

AOne the Service/URL. Category tab, set the service to any

BOn the Actions tab, configure a file blocking security profile

COn the Service/URL. Category tab, set the service to application-default

DOn the Service/URL. Category tab, manually specify a port/service

Show Suggested Answer

Suggested Answer: A

by Dell at Jun 24, 2024, 05:03 AM

Limited Time Offer

25%

Off

Get Premium PSE-Platform Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Wilburn

7 months ago

I think manually specifying a port/service on the Service/URL. Category tab could also work, depending on the situation.

upvoted 0 times

...

Tamra

7 months ago

I believe configuring a file blocking security profile on the Actions tab is also a good option.

upvoted 0 times

...

Sylvie

7 months ago

I agree with Ludivina, setting the service to application-default is the way to go.

upvoted 0 times

...

Ludivina

8 months ago

I think the best practice is to set the service to application-default.

upvoted 0 times

...

Denae

8 months ago

Forget the application, I'm just trying to figure out what 'Service/URL. Category' means. Is that a typo or is there a hidden joke in there?

upvoted 0 times

Luis

6 months ago

D) Exactly, it's a way to make it easier to manage and control your security policies.

upvoted 0 times

...

Felix

6 months ago

C) So, it's like grouping similar applications together to apply the same security rules?

upvoted 0 times

...

Zena

6 months ago

B) Yeah, it helps you control what types of services and URLs are allowed or blocked on your network.

upvoted 0 times

...

Davida

7 months ago

A) It's not a typo, it's a way to categorize different types of traffic for security purposes.

upvoted 0 times

...

Gerry

8 months ago

Haha, 'application-default'? That sounds like a cop-out. I'm going with B or D, no doubt.

upvoted 0 times

...

Desirae

8 months ago

I'm torn between B and D. Manually specifying the port/service might give me more control, but the file blocking profile sounds pretty comprehensive.

upvoted 0 times

Jerry

7 months ago

B) On the Actions tab, configure a file blocking security profile

upvoted 0 times

...

Latricia

7 months ago

A) One the Service/URL. Category tab, set the service to any

upvoted 0 times

...

Francene

8 months ago

Option B seems like the way to go. Configuring a file blocking security profile is a surefire way to completely block an application.

upvoted 0 times

Jesse

7 months ago

Manually specifying a port/service on the Service/URL. Category tab could also work to completely block the application.

upvoted 0 times

...

Earleen

7 months ago

I think setting the service to application-default on the Service/URL. Category tab is the way to go.

upvoted 0 times

...

Eric

8 months ago

I agree, configuring a file blocking security profile is the best practice.

upvoted 0 times

...